Cyber Security Engineer

Overview

To be part of Cyber Threat team, tier 3 SME and mentor to the SOC team. This role requires continuous detection, analysis, investigation, response, and mitigation of advanced threats before they affect the bank's IT infrastructure via a proven and documented cyberthreat model, e.g., Mitre Attack Framework.

Qualifications

• 4 - 5 years of information security experience
• 1 - 2 years supporting incident response and / or investigations
• Experience reviewing and assessing logs for anomalous activity indicating the presence of a threat
• Knowledge and ability to identify threat actor attack methods and track their developments
• Experience using Threat Model e.g. Cyber Kill Chain & Mitre ATT&CK
• Extensive experience conveying complex information in simple, succinct explanations
• Exceptional attention to detail
• Strong technical writing skills
• Extensive experience with analytical tradecraft
• Thorough understanding of cybersecurity principles
• Ability to work independently and build relationships
• Efficient research methodologies
• Ability to relate & convert technical threats with business risks
• Strong proficiency with scripting and programming languages (e.g. Python, PowerShell, Java, NodeJS, Perl, etc.)
• Strong communication & writing skills for reporting and analysis on cumulative findings

Key Responsibilities

Maintaining of SIEM solution including Splunk, Imperva and etc. (Task including compliance to patch and obsolescence framework requirement)

Perform threat hunting through industry accepted methodologies including Hypothesis Driven investigation, IOC driven Investigation or Machin Leaning Investigation

Continuously develop SIEM use cases based on Mitre Attack framework based on threat landscape

#J-18808-Ljbffr